Earlier this week, the US Cybersecurity and Infrastructure Security Agency (CISA) released two Industrial Control Systems (ICS) advisories regarding severe vulnerabilities in Advantech R-SeeNet and Hitachi Energy APM Edge appliances. The Hitachi advisory is an updated version of an advisory originally released in December 2021.
- Both advisories contain the phrase “Low attack complexity.” Additionally, the R-SeeNet vulnerability is remotely exploitable. In both cases, not only should you apply the update, but also make sure that you’re only allowing access from authorized devices and users, not directly exposing these devices to the Internet or Intranet, scanning media prior to introduction and monitoring for unexpected activity.
Read more in